However, the tweet seems to instead indicate that the given IP addresses are Socks5 Systemz systems that are being used by TeamSpy. It does not suggest that Socks5 Systemz is the same as TeamSpy.
Also, Pichichi/phichichi appears to be just the title on the displayed website, not the name of a malware family.
Judging by the commit history, it seems like the aliases "phichichi" and "socks5systemz" were taken from this Tweet: https://twitter.com/g0njxa/status/1701212547305607283![image](https://github.com/stamparm/maltrail/assets/3027817/82a7ffa3-ab44-4c6f-905e-18b6924441a9)
However, the tweet seems to instead indicate that the given IP addresses are Socks5 Systemz systems that are being used by TeamSpy. It does not suggest that Socks5 Systemz is the same as TeamSpy.
Also, Pichichi/phichichi appears to be just the title on the displayed website, not the name of a malware family.
See also: